IPv6 for Enterprise Networks (Networking Technology Series) （1ST）

Mcfarland, Shannon/ Sambi, Muninder/ Sharma, Nikhil/ Hooda, Sanja

Cisco Systems（2011/04発売）

ただいまウェブストアではご注文を受け付けておりません。 ⇒古書を探す

製本 Hardcover:ハードカバー版／ページ数 372 p.
言語 ENG
商品コード 9781587142277
DDC分類 004.62

Full Description

IPv6 for Enterprise NetworksThe practical guide to deploying IPv6 in campus, WAN/branch, data center, and virtualized environmentsShannon McFarland, CCIE (R) No. 5245Muninder Sambi, CCIE No. 13915Nikhil Sharma, CCIE No. 21273Sanjay Hooda, CCIE No. 11737IPv6 for Enterprise Networks brings together all the information you need to successfully deploy IPv6 in any campus, WAN/branch, data center, or virtualized environment. Four leading Cisco IPv6 experts present a practical approach to organizing and executing your large-scale IPv6 implementation. They show how IPv6 affects existing network designs, describe common IPv4/IPv6 coexistence mechanisms, guide you in planning, and present validated configuration examples for building labs, pilots, and production networks.The authors first review some of the drivers behind the acceleration of IPv6 deployment in the enterprise. Next, they introduce powerful new IPv6 services for routing, QoS, multicast, and management, comparing them with familiar IPv4 features and behavior. Finally, they translate IPv6 concepts into usable configurations. Up-to-date and practical, IPv6 for Enterprise Networks is an indispensable resource for every network engineer, architect, manager, and consultant who must evaluate, plan, migrate to, or manage IPv6 networks.Shannon McFarland, CCIE No. 5245, is a Corporate Consulting Engineer for Cisco serving as a technical consultant for enterprise IPv6 deployment and data center design with a focus on application deployment and virtual desktop infrastructure. For more than 16 years, he has worked on large-scale enterprise campus, WAN/branch, and data center network design and optimization. For more than a decade, he has spoken at IPv6 events worldwide, including Cisco Live.Muninder Sambi, CCIE No. 13915, is a Product Line Manager for Cisco Catalyst 4500/4900 series platform, is a core member of the Cisco IPv6 development council, and a key participant in IETF's IPv6 areas of focus.Nikhil Sharma, CCIE No. 21273, is a Technical Marketing Engineer at Cisco Systems where he is responsible for defining new features for both hardware and software for the Catalyst 4500 product line. Sanjay Hooda, CCIE No. 11737, a Technical Leader at Cisco, works with embedded systems, and helps to define new product architectures. His current areas of focus include high availability and messaging in large-scale distributed switching systems.n Identify how IPv6 affects enterprisesn Understand IPv6 services and the IPv6 features that make them possiblen Review the most common tranisition mechanisms including dual-stack (IPv4/IPv6) networks, IPv6 over IPv4 tunnels, and IPv6 over MPLSn Create IPv6 network designs that reflect proven principles of modularity, hierarchy, and resiliencyn Select the best implementation options for your organizationn Build IPv6 lab environmentsn Configure IPv6 step-by-step in campus, WAN/branch, and data center networksn Integrate production-quality IPv6 services into IPv4 networksn Implement virtualized IPv6 networksn Deploy IPv6 for remote accessn Manage IPv6 networks efficiently and cost-effectivelyThis book is part of the Networking Technology Series from Cisco Press (R), which offers networking professionals valuable information for constructing efficient networks, understanding new technologies, and building successful careers.

Introduction xixChapter 1 Market Drivers for IPv6 Adoption 1IPv4 Address Exhaustion and the Workaround Options 2IPv6 Market Drivers 3IPv4 Address Considerations 4Government IT Strategy 5Infrastructure Evolution 5Operating System Support 6Summary of Benefits of IPv6 6Commonly Asked Questions About IPv6 6Does My Enterprise Need IPv6 for Business Growth? 6Will IPv6 Completely Replace IPv4? 9Is IPv6 More Complicated and Difficult to Manage and Deploy Comparedto IPv4? 9Does IPv6 continue to allow my enterprise network to be multihomed toseveral service providers? 10Is quality of service better with IPv6? 10Is IPv6 automatically more secure than IPv4? 10Does the lack of NAT support in IPv6 reduce security? 10IPv6 in the IETF 11Enterprise IPv6 Deployment Status 12Summary 15Additional References 15Chapter 2 Hierarchical Network Design 17Network Design Principles 18Modularity 19Hierarchy 21Resiliency 24Enterprise Core Network Design 24Enterprise Campus Network Design 25Distribution Layer 25Layer 2 Access Design 25Routed Access Design 27Virtual Switching System Distribution Block 28Comparing Distribution Block Designs 28Access Layer 29Enterprise Network Services Design 29Enterprise Data Center Network Design 31Aggregation Layer 31Access Layer 32Data Center Storage Network Design 33Collapsed Core Topology 35Core Edge Topology 35Enterprise Edge Network Design 37Headquarters Enterprise Edge Network Components 38Headquarters Enterprise Edge Network Design 39Branch Network Architecture 39Branch Edge Router Functionality 41Typical Branch Network Design 42Summary 43Additional References 43Chapter 3 Common IPv6 Coexistence Mechanisms 45Native IPv6 47Transition Mechanisms 48Dual-Stack 48IPv6-over-IPv4 Tunnels 49Manually Configured Tunnel 51IPv6-over-IPv4 GRE Tunnel 53Tunnel Broker 546to4 Tunnel 55Intra-Site Automatic Tunnel Addressing Protocol (ISATAP) 57IPv6 over MPLS 58IPv6 over Circuit Transport over MPLS 58IPv6 Using IPv4 Tunnels on Customer Edge (CE) Routers 60IPv6 MPLS with IPv4-Based Core (6PE/6VPE) 60Protocol Translation/Proxy Mechanisms 62NAT-PT 63NAT64 64Summary 64Additional References 65Chapter 4 Network Services 67Multicast 67IPv6 Multicast Addressing 69Multicast Listener Discovery (MLD) for IPv6 71Multicast Routing: Protocol Independent Multicast (PIM) 72PIM Sparse Mode (PIM-SM) 73PIM Source Specific Multicast (PIM-SSM) 74Bidirectional PIM (PIM-Bidir) 76Quality of Service (QoS) 76Differences Between IPv6 and IPv4 QoS 76IPv6 Extension Headers 78IPv4 and IPv6 Coexistence 79IPv6 Routing 80OSPFv3 80EIGRPv6 83IS-IS 85Single Topology 86Multitopology 86Configuring IS-ISv6 86BGP 87Multiprotocol BGP for IPv6 88Summary 89Additional References 89Chapter 5 Planning an IPv6 Deployment 91Determining Where to Begin 91Benefit Analysis 92Cost Analysis 93Risks 94Business Case 94Transition Team 95Training 96Planning a Pilot 96Assessment 96Design 97IPv6 Addressing Plan 97Transition Mechanisms 98Network Services 98Security 98New Features in IPv6 99Scalability and Reliability 99Service Level Agreements 99Lessons Learned and Implementation 99Client/Server IPv6 Migration Scenarios 100IPv6 Core Deployment: "Start at the Core" 101Localized IPv6 Server-Side Deployment 102Client-Side Deployment 102Client/Server Deployment: Dual-Stack Configuration 103Planning Address Allocation 104Summary 104Additional References 105Chapter 6 Deploying IPv6 in Campus Networks 107Campus Deployment Models Overview 107Dual-Stack Model 108Benefits and Drawbacks of the DSM 108DSM Topology 109DSM-Tested Components 109Hybrid Model 109Benefits and Drawbacks of the HM 114HM Topology 115HM-Tested Components 115Service Block Model 115Benefits and Drawbacks of the SBM 116SBM Topology 117SBM-Tested Components 119General Campus IPv6 Deployment Considerations 119Addressing 119Physical Connectivity 120VLANs 121Routing 121High Availability 122QoS 123Security 125Making Reconnaissance More Difficult Through Complex AddressAssignment 126Controlling Management Access to the Campus Switches 126IPv6 Traffic Policing 128Using Control Plane Policing (CoPP) 129Controlling Ingress Traffic from the Access Layer 130First-Hop Security 130Blocking the Use of Microsoft Teredo 131Multicast 131Network Management 132Address Management 132Scalability and Performance 135Scalability and Performance Considerations for the DSM 135Scalability and Performance Considerations for the HM 136Scalability and Performance Considerations for the SBM 137Implementing the Dual-Stack Model 137Network Topology 138Physical/VLAN Configuration 140Routing Configuration 143First-Hop Redundancy Configuration 145QoS Configuration 147Multicast Configuration 149Routed Access Configuration 151Cisco Virtual Switching System with IPv6 155VSS Configuration 157VSS Physical Interface IPv6 Configuration 160Implementing the Hybrid Model 161Network Topology 161Physical Configuration 162Tunnel Configuration 163QoS Configuration 171Infrastructure Security Configuration 173Implementing the Service Block Model 174Network Topology 174Physical Configuration 176Tunnel Configuration 178QoS Configuration 180Summary 181Additional References 182Chapter 7 Deploying Virtualized IPv6 Networks 185Virtualization Overview 186Virtualization Benefits 186Virtualization Categories 186Network Virtualization 188Switch Virtualization 188Network Segmentation 188Virtual Routing and Forwarding (VRF-Lite) 189Transporting IPv6 Across the MPLS Backbone 193Virtual Private LAN Services 211Network Services Virtualization 212Virtualized Firewall 213Cisco Adaptive Security Appliance (ASA)Virtualization Architecture 213Understanding Virtual Contexts on the Cisco ASA 214Configuring Multiple Contexts on the Cisco ASA 215Configuring IPv6 Access Lists 219Desktop Virtualization 220IPv6 and Desktop Virtualization 221Desktop Virtualization Example: Oracle Sun Ray 222Server Virtualization 223Summary 223Additional References 224Chapter 8 Deploying IPv6 in WAN/Branch Networks 225WAN/Branch Deployment Overview 226Single-Tier Profile 226Dual-Tier Profile 227Redundancy 228Scalability 228WAN Transport 228Multitier Profile 228General WAN/Branch IPv6 Deployment Considerations 229Addressing 230Physical Connectivity 230VLANs 231Routing 232High Availability 232QoS 233Security 233Multicast 236Management 236Scalability and Performance 238WAN/Branch Implementation Example 238Tested Components 239Network Topology 240WAN Connectivity 240Branch LAN Connectivity 241Firewall Connectivity 241Head-End Configuration 242Branch WAN Access Router Configuration 245Branch Firewall Configuration 247EtherSwitch Module Configuration 250Branch LAN Router Configuration 252WAN/Branch Deployment over Native IPv6 254Summary 258Additional References 258Chapter 9 Deploying IPv6 in the Data Center 261Designing and Implementing a Dual-Stack Data Center 262Data Center Access Layer 264Configuring Access Layer Devices for IPv6 265NIC-Teaming Considerations 267Data Center Aggregation Layer 269Bypassing IPv4-Only Services at the Aggregation Layer 269Deploying an IPv6-Only Server Farm 271Supporting IPv4-Only Servers in a Dual-Stack Network 271Deploying IPv6-Enabled Services at the Aggregation Layer 272Data Center Core Layer 279Implementing IPv6 in a Virtualized Data Center 279Implementing IPv6 for the SAN 281FCIP 281iSCSI 284Cisco MDS Management 285Designing IPv6 Data Center Interconnect 286Design Considerations: Dark Fibre, MPLS, and IP 287DCI Services and Solutions 288Summary 289Additional References 289Chapter 10 Deploying IPv6 for Remote Access VPN 291Remote Access for IPv6 Using Cisco AnyConnect 292Remote Access for IPv6 Using Cisco VPN Client 297Summary 301Additional References 301Chapter 11 Managing IPv6 Networks 303Network Management Framework: FCAPS 304Fault Management 305Configuration Management 305Accounting Management 306Performance Management 306Security Management 306IPv6 Network Management Applications 307IPv6 Network Instrumentation 308Network Device Management Using SNMP MIBs 308Relevance of IPv6 MIBs 311IPv6 Application Visibility and Monitoring 312Flexible NetFlow 312NetFlow Versions 313NetFlow version 9 (Flexible NetFlow [FnF]) 314IPFIX 320IP SLA for IPv6 322Automation Using Flexible Programming withEmbedded Event Manager 328IPv6 Network Management 330Monitoring and Reporting 331SNMP over IPv6 331Syslog over IPv6 332ICMPv6 332Network Services 333TFTP 333NTP 333Access Control and Operations 334Telnet 334SSH 335HTTP 336IPv6 Traffic-Monitoring Tools 337SPAN, RSPAN, and ERSPAN 337Configuring SPAN Types 338Mini Protocol Analyzer 339VLAN Access Control List (VACL) Capture 340Summary 341Additional References 342Chapter 12 Walk Before Running: Building an IPv6 Lab and Starting a Pilot 343Sample Lab Topology 344Sample Lab Addressing 347Configuring the Networking Devices 348Operating System, Application, and Management Deployment 348Moving to a Pilot 359Summary 360Additional References 360Index 361